Lucene search
HistoryMay 15, 2013 - 3:36 a.m.
CVE-2013-1308
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
7.2
Confidence
Low
EPSS
0.96
Percentile
99.5%
Use-after-free vulnerability in Microsoft Internet Explorer 6 through 10 allows remote attackers to execute arbitrary code via a crafted web site that triggers access to a deleted object, aka “Internet Explorer Use After Free Vulnerability,” a different vulnerability than CVE-2013-1309 and CVE-2013-2551.
Affected configurations
Node
microsoftinternet_explorerMatch6
ORmicrosoftinternet_explorerMatch7
ORmicrosoftinternet_explorerMatch8
ORmicrosoftinternet_explorerMatch9
ORmicrosoftinternet_explorerMatch10
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | internet_explorer | 6 | cpe:2.3:a:microsoft:internet_explorer:6:*:*:*:*:*:*:* |
| microsoft | internet_explorer | 7 | cpe:2.3:a:microsoft:internet_explorer:7:*:*:*:*:*:*:* |
| microsoft | internet_explorer | 8 | cpe:2.3:a:microsoft:internet_explorer:8:*:*:*:*:*:*:* |
| microsoft | internet_explorer | 9 | cpe:2.3:a:microsoft:internet_explorer:9:*:*:*:*:*:*:* |
| microsoft | internet_explorer | 10 | cpe:2.3:a:microsoft:internet_explorer:10:*:*:*:*:*:*:* |
Related
cvelist
cvelist
prion
prion
Design/Logic Flaw
2013-05-15 03:36:00
Design/Logic Flaw
2013-03-11 10:55:00
Design/Logic Flaw
2013-05-15 03:36:00
cve
cve
nvd
nvd
CVE-2013-1309
2013-05-15 03:36:34
CVE-2013-2551
2013-03-11 10:55:01
attackerkb
attackerkb
CVE-2013-2551
2013-03-11 00:00:00
CVE-2013-1308
2013-05-15 00:00:00
packetstorm
packetstorm
cisa_kev
cisa_kev
Microsoft Internet Explorer Use-After-Free Vulnerability
2022-03-28 00:00:00
saint
saint
Internet Explorer VML Dashstyle Attributes Integer Overflow
2013-06-03 00:00:00
Internet Explorer VML Dashstyle Attributes Integer Overflow
2013-06-03 00:00:00
Internet Explorer VML Dashstyle Attributes Integer Overflow
2013-06-03 00:00:00
threatpost
threatpost
Terror Exploit Kit Evolves Into Larger Threat
2017-05-19 14:22:23
Malvertising Campaign Hits AOL Ad Network, Leads to Exploit Kit
2015-01-06 14:25:29
Inside the RIG Exploit Kit
2016-11-04 17:58:47
zdt
zdt
symantec
symantec
checkpoint_advisories
checkpoint_advisories
Suspicious HTML Containing Overly Long Text (CVE-2013-2551)
2014-02-25 00:00:00
Suspicious Javascript Containing Overly Long Strings (CVE-2013-2551)
2013-12-31 00:00:00
Internet Explorer VML Objects Use After Free (MS13-037; CVE-2013-2551)
2013-05-14 00:00:00
securityvulns
securityvulns
metasploit
metasploit
MS13-037 Microsoft Internet Explorer COALineDashStyleArray Integer Overflow
2013-06-12 12:37:57
seebug
seebug
Microsoft Internet Explorer 不明细节远程代码执行漏洞(CVE-2013-2551)
2013-03-20 00:00:00
zdi
zdi
exploitdb
exploitdb
openvas
openvas
nessus
nessus
MS13-037: Cumulative Security Update for Internet Explorer (2829530)
2013-05-15 00:00:00
mskb
mskb
MS13-037: Cumulative Security Update for Internet Explorer: May 14, 2013
2013-05-14 00:00:00
malwarebytes
malwarebytes
RIG exploit kit distributes Princess ransomware
2017-08-31 20:04:32
thn
thn
Researchers Share New Insights Into RIG Exploit Kit Malware's Operations
2023-02-27 15:33:00
qualysblog
qualysblog
The Rise of Ransomware
2021-10-05 12:50:00
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
7.2
Confidence
Low
EPSS
0.96
Percentile
99.5%
Related for NVD:CVE-2013-1308